MAL-2025-188435 Malicious code in ophiuchus-bootstrap-perseus-airbnb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 165a8447356cfc0b4e1e5b701577bcb27e3f4cdfad04226d333dcb610673e901 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187187 Malicious code in global-schema-unuk-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aef95ff16cdf95db51f17b07305ed739636baecdca77c9ac45f76f5a27c7d581 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190484 Malicious code in zooarchaeology-configstore-google-darkenergy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 685650e6cfa174e861e100212f50881c079171023d9a1a82afaabbba16bc6127 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186902 Malicious code in exoplanet-boson-readable-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2512ae5cd9511f06a762c8a07b26c5fba37ef49c4de4cafe77cec8408fe52ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187664 Malicious code in kardashevscale-dotenv-safe-callisto-quasarjet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00dd6daf056c12587f78cd4d25b3ea2e9fdc19b90912211f667dda8a247dbd73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185522 Malicious code in archaeoastronomy-prettier-plugin-markdown-backend-archaeoastronomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 842dc5b77aa3861dfe0db40dafca17529b5f5ff542199416db4cf136ba3c5db8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186176 Malicious code in cloud-water-old-moon-wind (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f6319ff7b420cb0dd56f67db0f75f27c89f1cc43360a9ca664fd1a8b8668b4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188038 Malicious code in middleware-css-loader-eigenstate-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 534a9e81e6c2402ae393adf28af59d4b379d1072ef0b71622fdc40f5080ab7e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187100 Malicious code in gammarayburst-venus-tectonophysics-colors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4109786a6043bf4c8d88fb2455c72847a0962f9e4f4dd5b8e4ccf91dd9984405 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185711 Malicious code in axios-algol-wolf-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2bb86b8d75a55a4d1adf14075e237934bca6eea01c1554d121b3e15bda20ca7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185512 Malicious code in aquarius-babel-nconf-build (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 367d06fdbae8de2b7d6bcc68f6b13999fc7160d92484baa01898cb3fd84acfab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186626 Malicious code in dotenv-safe-sedimentology-wolf-singularity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a7735c92427f6151353c4da7ddb0c7da56e021f0ab2b4758b33e8044419c473 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186537 Malicious code in dendrochronology-colors-cosmos-run-script (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5c58b497bfa810639e7f04a95d1dfdce0066084759d6a3d71419afa81f4dd6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189653 Malicious code in star-earth-small-execute-decrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71714330271c58d2d5c06d8a1ef7ca0ee575d60552bc9bed163a8d19d031220b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189896 Malicious code in testcafe-jsonp-lyra-antd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 304cb8c0a4bc6028d7409abd3438dd2e2e32758c808c2e52ddc9c45829b586ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188033 Malicious code in meteor-spectron-webdriver-ignite-spawn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7825fb698098acfc9237bd9d71a9037ffc59b30a8a2d44a9f74468e7506bfceb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186750 Malicious code in enif-europa-lint-staged-equinox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0a4b0d4a573c4667cb852c344a431b5ebaf4a80efa62ab03d67cc62907c2c5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185790 Malicious code in betelgeuse-dactyl-rollup-plugin-quasarjet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b276a38e6d1442516815c0d50b8061aa3cdad9c4604a462f8abae9d6ac73d619 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187800 Malicious code in link-upsilon-link-kappa-compress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3067d1508451f6789510b62511e905e3046d9763f2244761c52bc46576b6b073 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187931 Malicious code in markdown-pdf-boson-magnetosphere-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c38c10cbcebe8560cdc3182baf4edfab1ae95d08ad3c9ddffdae25d5e72a4206 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...